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REMARKS 

Applicants' Agent would like to thank Examiners Bayou and Zand for the 
telephonic interview conducted on Thursday, January 31, 2008. In the interview, Applicants' 
Agent presented amendments made to independent claim 1 which he believed distinguished over 
Trostle. Applicant's Agent further presented arguments in support of the amendments, which are 
presented in greater detail herembelow. Examiner Zand agreed that the amendments to claim 1 
overcome the rejection based on Trostle. However, another search might be conducted to 
determine patentability of amended claim 1. 

Introduction 

Claims 1-12 were pending. Claims 1 , 6, and 9 are independent. Claims 1, 6 and 9 
have been amended herein. 

Rejections under 35 U.S.C. § 1 12 

Claims 1, 6, and 9 were rejected under 35 U.S.C. § 112, first paragraph for having 
limitations directed toward "private communications channels" which allegedly have no support 
in the specification. Applicants have amended claims 1, 6, and 9 to refer instead to "inter- 
process pipes" which is supported in the specification as published (U.S. Patent Application 
Publication No. 2005/0166048 1 at least at page 1, paragraph [0013]. Accordingly, Applicants 
respectfully request withdrawal of the 35 U.S.C. § 1 12 rejection of claims 1, 6, and 9. 
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Rejections under 35 U.S.C. $ 102(b) 

Claims 1-12 stand rejected under 35 U.S.C. 102(e) as being unpatentable over 

U.S. Patent No. 6,775,783 (Trostle). 

Trostle describes a system, method and apparatus for limiting access by a user to 
a networked application or service. Access to network security credentials that allow a user to 
authenticate to application servers is accomplished by storing the user's credentials in memory 
that is only accessible by a local security authority (LSA). A secret associated with each 
credential is stored in a secret file which is accessible only by the associated user. When this 
secret is passed to the LSA by the user, the LSA passes back a handle to the appropriate 
credential, which the user can later use to obtain authentication information. Thus, to access a 
credential, a user must conform with the file system access control to first access the secret, then 
conform with the LSA access control to obtain the credential handle. 

In contrast to the method described by Trostle, amended independent claims 1 , 6, and 9 
of the present application describe, respectively, a method, a system, and a Unix implementation 
of the method of claim 1, configured to execute steps of receiving a request to access a store 
from a first process initiated by a requester; initiating a second process responsive to said store 
access request, wherein data generated by said second process is accessible to said first process 
but inaccessible to the requester; changing a context of said second process to the user id of said 
store; providing said store with an exclusive user id, said exclusive user id being different from a 
user id of the requestor; said second process receiving tokenized credentials corresponding to the 
user id and password of the requestor from said first process responsive to said request without 
the use of files and without interaction with said requester.; said second process converting the 
tokenized credentials to the user id and password of the requestor and performing a lookup of 
said user id and password of the requestor in a credential store; said second process passing a 
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user id and password associated with said store to said first process if said user id and password 
of the requestor are found in said credential store; communicating between said first process and 
said store via inter-process pipes and said first process obtaining data from said store via said 
inter-process pipes responsive to said store access request using said user id and password 
associated with said store. 

Amended independent claims 1 , 6, and 9 are distinguishable from Trostle, as discussed 
during the aforementioned inteiview in the following ways. For verifying the identity of a user, 
the system of Trostle uses an LSA to generate a random secret in a separately generated file 
which is accessible to the user, and which the user uses to gain access. In contrast, amended 
claims 1, 6, and 9 recite a user, sending through a first process (such as a login process) to a 
second process tokenized credentials corresponding to the user id and password of the requestor 
without the use of files and without interaction with said requester. The tokenized credentials are 
converted by the second process to the actual user id and password of the requestor, which the 
second process then uses to find a match of the same user id and password in a credential store. 
If the user id and password are found, then the second process "grants" access to the request for 
data in another store by passing the user id and password of the second store to the login process 
of the requestor, which is subsequently used to complete the request. In contrast, the LSA of 
Trostle looks for the random secret being passed from the user to the LSA, and then a handle to 
the store being accessed is passed back to the user for subsequent access requests, while the LSA 
communicates with the store using a secret user id and password of the store. Note that the 
credential handle is not the credentials themselves and is also distinct from the authentication 
information passed from the security server to the login program. This secret user id and 
password is not passed back to the user process, as it is in amended independent claims 1, 6, and 
9. 
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Accordingly, Applicants submit that Trostle does not disclose or teach the 
invention recited by amended claims 1, 6, and 9 of the present application. Claims 2-5 
ultimately depend from claim 1, claims 7 and 8 ultimately depend from claim 6, and claims 10- 
12 ultimately depend from claim 9. Since claims 1, 6, and 9 have been shown to be patentable, 
the claims depending therefrom are likewise deemed to be patentable, for at least the reasons 
described above with respect to the patentability of claims 1 , 6, and 9. Accordingly, Applicants 
respectfully request withdrawal of the 35 U.S.C. § 102(e) rejection of claims 1-12. 

Thus, Applicants submit that each of the claims of the present application are 
patentable over each of the references of record, either taken alone, or in any proposed 
hypothetical combination. Accordingly, withdrawal of the rsjections to the claims is respectfully 
requested. 
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C onclusion 



In view of the above remarks, reconsideration and allowance of the present 



application is respectfully requested. No fee is believed to be due in connection with this 
Amendment. If, however, any fees are deemed necessary for this Amendment to be entered and 
considered by the Examiner, then the Commissioner is authorized to charge such fee to Deposit 
Account No. 50-1358. Applicants' undersigned patent agent may be reached by telephone at 
(973) 597-2500. All correspondence should continue to be directed to our address listed below. 



Respectfully submitted, 





Patent Agent for Applicants 
Registration No. 53,836 



DOCKET ADMINISTRATOR 
LOWENSTEIN SANDLER PC 
65 Livingston Avenue 
Roseland,NJ 07068 
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